Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/03c59c-d257-48ac-ba33-b0eead7c2488/1/C4B4IgA1bSihcINnyaguVBQ217g.roa
File: C4B4IgA1bSihcINnyaguVBQ217g.roa (raw, json)
Hash identifier: 3Sk7dSilP/j7za2QAiRVNZ5P77PBn9XiA/kjfPni/d0=
Subject key identifier: 0B:80:78:22:00:35:6D:28:A1:70:83:67:C9:A8:2E:54:14:36:D7:B8
Certificate issuer: /CN=36be697c8489f482220f5c4064babe4c83c419d6
Certificate serial: 01856C0A44749FDAFE6F8CCFBDD3D4E59DCA
Authority key identifier: 36:BE:69:7C:84:89:F4:82:22:0F:5C:40:64:BA:BE:4C:83:C4:19:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nr5pfISJ9IIiD1xAZLq-TIPEGdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/03c59c-d257-48ac-ba33-b0eead7c2488/1/C4B4IgA1bSihcINnyaguVBQ217g.roa
Signing time: Sun 01 Jan 2023 06:34:50 +0000
ROA not before: Sun 01 Jan 2023 06:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197395
IP address blocks: 91.208.62.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:44:74:9f:da:fe:6f:8c:cf:bd:d3:d4:e5:9d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36be697c8489f482220f5c4064babe4c83c419d6
Validity
Not Before: Jan 1 06:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b80782200356d28a1708367c9a82e541436d7b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2c:cc:e1:03:80:df:7a:18:23:d9:dd:ad:f4:
b1:4c:ab:66:ac:e8:b0:97:32:92:9a:99:7c:45:64:
6b:9e:e2:03:5e:56:d1:84:b7:2d:e2:6b:73:ee:e7:
b4:2d:80:10:11:0e:1b:79:97:6e:f2:2d:70:b1:77:
a6:23:f6:75:ad:8b:b0:56:5e:75:75:fb:b1:41:82:
64:f1:62:63:38:37:c4:65:d2:2c:c1:82:54:db:30:
3f:74:93:b0:7b:fe:19:80:04:90:db:3d:1b:69:88:
75:f4:02:a0:de:39:39:c6:c9:17:8e:2d:bb:70:6b:
d3:bd:e8:d4:59:45:1e:f9:ff:49:7f:fe:ec:f9:cd:
3b:f1:32:3c:bc:36:b4:48:e7:a8:1b:2e:87:6e:d3:
96:bb:ae:33:76:85:38:59:09:c7:98:dd:90:9d:33:
ce:73:bd:29:7e:16:50:77:c9:c5:fa:e3:9e:e8:39:
0d:e5:29:ae:ce:75:b8:22:f5:aa:42:0b:e4:20:95:
d2:25:25:bf:4c:52:7b:a7:23:ad:e0:d4:f2:99:09:
b0:8c:dd:38:bd:a8:15:9c:0e:c2:1f:54:68:99:b8:
0a:f2:61:e9:a4:7f:f8:c8:fe:74:30:44:b1:01:11:
c2:a4:cc:a0:aa:8b:50:44:58:18:b1:97:d8:5b:3c:
36:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:80:78:22:00:35:6D:28:A1:70:83:67:C9:A8:2E:54:14:36:D7:B8
X509v3 Authority Key Identifier:
keyid:36:BE:69:7C:84:89:F4:82:22:0F:5C:40:64:BA:BE:4C:83:C4:19:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nr5pfISJ9IIiD1xAZLq-TIPEGdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/03c59c-d257-48ac-ba33-b0eead7c2488/1/C4B4IgA1bSihcINnyaguVBQ217g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/03c59c-d257-48ac-ba33-b0eead7c2488/1/Nr5pfISJ9IIiD1xAZLq-TIPEGdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.62.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:6a:2b:97:ac:4f:bf:6b:d8:fc:9b:0f:57:07:bb:73:f0:50:
02:7c:63:df:b8:4a:49:78:48:2d:ae:b2:9d:46:14:4c:ee:99:
1a:85:45:42:69:cd:ce:ab:24:82:bb:15:d5:50:b0:c8:88:d1:
75:9e:ff:44:25:39:ca:8f:c2:7d:51:50:5c:e9:c6:7e:58:5d:
ad:8c:d3:c4:c3:78:52:54:ee:2c:6d:09:09:a7:27:cc:00:e6:
f3:39:3b:00:6a:ab:81:66:69:3b:22:ac:cc:56:0f:8a:f3:09:
ec:83:04:95:89:c8:28:ba:7f:f9:26:9b:98:32:d9:a6:4f:b8:
36:cf:c8:76:54:03:ca:bd:75:70:ca:5b:b9:39:40:64:f1:49:
22:79:12:a5:84:2d:ce:fe:2d:b8:07:14:e4:e4:b3:6a:ab:32:
05:34:6e:bc:09:97:56:23:d0:07:10:dc:c8:ac:78:27:56:b7:
c6:4c:e2:b1:fd:3a:70:26:2c:20:bd:eb:1b:fc:6f:dc:7a:20:
54:db:d1:ca:e4:52:23:ef:dc:5a:a4:ad:9c:ee:70:80:20:69:
f9:44:a8:f1:06:29:f1:8f:17:6b:fd:e3:4b:da:b7:6e:60:70:
d9:6c:ca:49:29:ce:94:ab:68:43:66:7b:58:f0:b1:5d:38:f4:
48:93:73:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:31 2024 by rpki-client on console.sobornost.net